CVE-2025-8424

CVSS v4.0

8.7

Vector

AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L

Name of the Vulnerable Software and Affected Versions: NetScaler ADC and NetScaler Gateway (affected versions not specified)

Description: Improper access control exists on the NetScaler Management Interface in NetScaler ADC and NetScaler Gateway. An attacker gaining access to the appliance’s NSIP, Cluster Management IP, local GSLB Site IP, or SNIP with Management Access can compromise security.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Access Control

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-284CWE-1284

Related Identifiers

BDU:2025-10384

CVE-2025-8424

Affected Products

Netscaler Adc

Netscaler Gateway

CVE-2025-8424

Weakness Enumeration

Related Identifiers

Affected Products

References · 20